infisical scan
scan git-changes
Scan for secrets in your uncommitted code
infisical scan git-changes
# Display the full secret findings
infisical scan git-changes --verbose
Description
Scanning for secrets before you commit your changes is great way to prevent leaks. Infisical makes this easy with the sub command git-changes
.
The git-changes
scans for uncommitted changes in a Git repository, and is especially designed for use on developer machines, aligning with the ‘shift left’ security approach.
When git-changes
is run on a Git repository, Infisical parses the output from a git diff
command.
To scan changes in commits that have been staged via git add
, you can add the --staged
flag to the sub command. This flag is particularly useful when using Infisical CLI as a pre-commit tool.
Flags
Was this page helpful?